avoid dup iptables rules

2014-10-23 09:16:51 -04:00 · 2014-10-23 09:16:51 -04:00 · be22048a2b
commit be22048a2b
parent f05de3eb84
1 changed files with 6 additions and 3 deletions
--- a/bin/ovpn_run
+++ b/bin/ovpn_run
@ -19,10 +19,13 @@ fi

 # Setup NAT forwarding if requested
 if [ "$OVPN_DEFROUTE" != "0" ];then
-    iptables -t nat -A POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE
-
+    iptables -t nat -C POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE || {
+      iptables -t nat -A POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE
+    }
    for i in "${OVPN_ROUTES[@]}"; do
-        iptables -t nat -A POSTROUTING -s "$i" -o eth0 -j MASQUERADE
+        iptables -t nat -C POSTROUTING -s "$i" -o eth0 -j MASQUERADE || {
+          iptables -t nat -A POSTROUTING -s "$i" -o eth0 -j MASQUERADE
+        }
    done
 fi